Okay im trying to identify my cellphone string for the dhcp fingerprint but im unable...
I fallow the steps of aruba dhpc fingerprint but i cannot get nothing int he logs....
i go to monitoring --> process logs..
And all i see is this:
Sep 28 16:45:58 fpapps[1503]: <208006> <INFO> |fpapps| Changing the vlan 200 state to UP from DOWN
Sep 28 16:45:58 fpapps[1592]: <208045> <DBUG> |fpapps| Received event 3 for Interface 292
Sep 28 16:45:58 fpapps[1592]: <208043> <DBUG> |fpapps| Nim received event L7_UP for interface 292 linkState 3
Sep 28 16:45:58 fpapps[1592]: <208004> <DBUG> |fpapps| Dot1q Change Call back is called 292 event L7_UP (3)
Sep 28 16:45:58 fpapps[1592]: <208044> <DBUG> |fpapps| Nim Interface 292 state change notification, new state L7_FORWARDING
Sep 28 16:45:58 fpapps[1592]: <208045> <DBUG> |fpapps| Received event 6 for Interface 292
Sep 28 16:45:58 fpapps[1592]: <208043> <DBUG> |fpapps| Nim received event L7_FORWARDING for interface 292 linkState 3
Sep 28 16:45:58 fpapps[1592]: <208004> <DBUG> |fpapps| Dot1q Change Call back is called 292 event L7_FORWARDING (6)
Sep 28 16:45:58 pim[1507]: <204229> <DBUG> |pim| Received IP multicast interface VLAN VLAN Up message for VLAN 200
Sep 28 16:45:58 fpapps[1592]: <208045> <DBUG> |fpapps| Received event 6 for Interface 292
Sep 28 16:45:58 fpapps[1592]: <208043> <DBUG> |fpapps| Nim received event L7_FORWARDING for interface 292 linkState 3
Sep 28 16:45:58 fpapps[1592]: <208004> <DBUG> |fpapps| Dot1q Change Call back is called 292 event L7_FORWARDING (6)
Sep 28 16:45:58 pim[1507]: <204229> <DBUG> |pim| Received IP multicast interface VLAN VLAN Up message for VLAN 200
Sep 28 16:45:59 dhcpdwrap[1563]: <202086> <INFO> |dhcpdwrap| netlink_arp_changed(): ker_mac 38:ec:e4:12:ae:34 pkt_mac 38:ec:e4:12:ae:34 cip 172.29.0.5
as you see no fingerprint...
My aruba controller is just doing layer 2... he does not do any layer 3 decision... i got the ip helper on the Switch core...
The vap im connecting its on Tunnel mode so its okay it should work i guess..
it also says on the guide
The controller must be in the data path of DHCP exchange, but it does not have to be the
DHCP server
Which im not sure what it means... but i guess that as the client is on the way between the controller and the dhcp server this should be a valid scenario for dhcp fingerprint or im wrong?